The Apache Software Foundation has patched a severe vulnerability in the Apache (httpd) web server project that could allow rogue server scripts to execute code with root privileges and take over the underlying server.